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This listing of claims will replace all prior versions, and listings, of claims in the application: 



1 1. (original): A method of testing a network firewall, comprising: 

2 transmitting a communications session initiation signal from said signal source 

3 using an IP address corresponding to said signal source to establish a conmiunications 

4 session to be conducted through said firewall; 

5 transmitting test signals from said signaJ source, following initiation of said 

6 communications session and prior to tennination of said initiated communications 

7 session, at a range of ports in a first side of said firewall through which media signals 

8 may be transmitted when said ports axe open, said test signals including said IP address; 

9 monitoring a second side of said firewall to detect any transmitted test signals that 

1 0 pass through said firewall; and 

1 1 identifying any open ports that are not associated with said established 

12 communications session, which passed at least one of said transmitted test signals, as 

1 3 erroneously open ports. 

1 2. (original): The method of claim 1 , wherein said transmitted test signals are IP packets 

2 which Include said IP address as a source address. 

1 3. (original): The method of claim 1 , further comprising: 

2 determining from at least one session initiation signal at least one port associated 

3 with the established communication session ihat should be open; and 

4 generating an error signal indicating that said at least one port associated with the 

5 established communication session is erroneously closed if a test signal is not detected 

6 passing through said port to the second side of said firewall. 

1 4. (original): The method of claim 3, further comprising, prior to transmitting said 

2 communications session initiation signal, 

3 transmitting a first test signal at the first side of said network firewall from the 

4 signal source using an IP address that is not associated with any ongoing communications 

5 • session being conducted through said firewall; 
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6 monitoring the second side of said firewall to determine if said first test signal 

7 passed through said firewall; and 

8 reporting a firewall error if it is determined that said first signal passed through 

9 said firewall. 

1 5. (original): The method of claim 3, wherein said transmitting steps arc performed by a 

2 first test device and said monitoring steps are performed by a second test device^ the 

3 second test device being physically separate fi'om said first test device, the method further 

4 comprising: 

5 synchronizing the first and second test devices to a common clock located 

6 external to said first and second test devices. 

1 6. (original): The method of claim 5, fiirther comprising; 

2 operating the first tesi device to communicate information identifying ports 

3 through which test signals were detected passing through said firewall firom the second 

4 side to the second test device; and 

5 operating the second test device to generate a test report including information 

6 about the status of unidirectional ports used to communicatte signals from the first side to 

7 the second side and unidirectional ports used to conmiunicate signals fix)m the second 

8 side to the first side. 

1 7. (original): The method of claim 5, further comprising; 

2 operating the second test device to communicate information identifying ports 

3 through which test signals were detected passing through said firewall from the first side 

4 to the first test device; and 

5 operating the first test device to generate a test report including information about 

6 the status of unidirectional ports used to communicate signals from the first side to the 

7 second side and unidirectional ports used to communicate signals fi^m the second side to 

8 the first side. 

1 8. (original): The method of claim 7, wherein said session signal is at least one of SIP 
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2 and R323 compliant signals. 

1 9. (currently amended): A firewall test system, comprising: 

2 a first test device located on an untmsted side of said firewall, the first test device 

3 including: 

4 i) a session signal generator for transmitting a communications session 

5 initiation signal using an IP address corresponding to said signal source to 

6 establish a communications session to be conducted through said firewall; 

7 ii} a probe signal generator for generating test signals at a range of ports in 

8 a first side of said firewall through which media signals may be 

9 transmitted when said ports are open, said test signals including said IP 

10 address; and 

1 1 iii) timing synchronization circuitry for synchronizing said session signal 

1 2 generator and said probe signal generator to at least one of another test 

1 3 device and a clock signal source located external to said first test device; 

14 and 

IS. a second test device located on » g trusted side of said firewall, the &st second 

1 6 test device including: 

1 7 means for monitoring a second side of said firewall to detect any 

1 8 transmitted test signals thai pass through said firewall; and 

19 iin analysis module for identifying any open ports tfiai are not 

20 associated with an established communications session, which passed at least one 

2 1 of said transmitted test signals, as erroneously open ports. 

1 10. (original): The system of claim 9, wherein said probe signal generator generates IP 

2 packets which Include said IP address as a source address. 

1 11. (original): The system of claim 9, wherein said analysis module includes: 

2 means for determining from at least one session initiation signal at least one pott 

3 associated with the established communication session that should be open; and 

4 means for generating an error signal indicating that said at least one port 
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5 associated with the established communication session is erroneoixsly closed if a test 

6 signal is not detected passing through said port lo the second side of said firewall 

1 12. (original): The system of claim 1 1 , wherein the test signal generator of said first test 

2 device includes: 

3 means for transmitting a first test signal at the first side of said network firewall 

4 firom the signal source using an IP address that is not associated with any ongoing 

5 commtmications session being conducted through said firewall prior to said 

6 communications session initiation signal being generated. 

1 13. (original): The system of claim 1 1 , wherein said first test device further includes: 

2 an analysis module for monitoring the second side of said firewall to determine if 

3 said first test signal (passed through said firewall; and 

4 a report generation module for reporting a firewall error if it is determined that 

5 said first signal passed through said firewall. 

1 14. (original): The system of claim 9, wherein said session signal generates at least 

2 one of SIP and H.323 compliant signals. 
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